Antimalware policy settings
Symantec Endpoint Securityincludes an Antimalware policy that provides Intensive Protection settings plus scan settings and other antimalware feature settings.
Some default scans are included out-of-the-box. A daily scan and weekly scan are enabled by default.
Automatic scans include the following:
- USB ScanRuns when the user logs on. Disabled by default.Auto-Protect must be enabled for the USB scan to run.
- Startup ScanRuns when the user logs on. Disabled by default.
- Defwatch ScanRuns when new definitions arrive. Enabled by default.
Scheduled scans can scan any files that exist on your devices. They also protect memory, load points, and other important locations on your devices.
When you create a scan, you can choose whether the
Scan Typeis an
To edit a scan, select the actions menu to the right of the scan and select
Edit Scan Scheduleoptions appear. You can also create a new scan.
Default scans include a Quarantine scan that is enabled by default. A USB scan is also available but disabled by default.
For scan edit details, see Scheduled scan options.
You should make sure that you run an active scan every day on the computers in your network. You should also run the full scan once a week or once a month if you suspect that you have an inactive threat in your network.
Scans access complete definitions sets in the cloud.
Advanced Scheduled Scan Settings
You can configure the following options:
User Notification Settings
Show antimalware scan results on the infected device
Enables or disables showing any antimalware scan results on infected devices. Antimalware scans include Auto-Protect scans, scheduled scans, or on-demand scans.
Advanced options for user notification settings:
Shows advanced settings for Auto-Protect and other antimalware features.
Options for scan details include the following:
These options are only available for administrator or user defined scheduled scans.
Scan files inside compressed files
This option is enabled by default. You can also set
Number of levels to expand if there are compressed files within compressed files.You might want to change the setting to 1 or 2 levels to reduce scan time.
Scans always scan container files unless you disable this option or create scan exceptions for specific container files.
Move the slider to select the type of tuning for the scan.